Dropbox is asking users who signed up before mid-2012 to change their passwords if they haven’t done so since then.
The cloud storage service said it was asking users to change their passwords as a preventive measure, and not because there is any indication that their accounts were improperly accessed.
Dropbox said it was taking the measure because its security teams learned about an old set of Dropbox user credentials, consisting of email addresses and hashed and salted passwords, which it believes were obtained in 2012 and could be linked to an incident the company reported around the time.
In July 2012, Dropbox said its investigation found that usernames and passwords recently stolen from other websites were used to sign in to a small number of of Dropbox accounts. It said it had contacted the users affected to help them protect their accounts.
Users who signed in before 2012 and haven’t changed their password since then will be prompted by Dropbox to change it the next time they sign in. Users will have to set a stronger password with the help of a meter provided by Dropbox that measures its strength.
Dropbox is also recommending that users use two-factor authentication when resetting their passwords.
It is advised to regularly update the passwords of all of your accounts, and to have different ones for each online account. It is especially important to have a strong and unique password for your email account.
While that may sound like a tiresome task, password managers can be downloaded which create and remember the passwords for you. It is best to do your own research on these to see which may work best for you, as there are many available.
For more information about our work, please visit www.safeinwarwickshire.com/cybercrime
Be Cyber Streetwise is a cross-government campaign, funded by the National Cyber Security Programme. They aim to measurably and significantly improve the online safety behaviour and confidence of consumers and small businesses (SMEs).
Get Safe Online is the UK’s leading source of factual and easy-to-understand information on online safety. Their website offers advice on how you can protect yourself, your computers and devices, and your business against the likes of fraud, identity theft, viruses and other potential online problems.